Solved

Windows Firewall Ports on Exchange 2007 CAS/HUB/MAILBOX Server

Posted on 2008-10-24
6
3,051 Views
Last Modified: 2012-05-05
I recently turned on Windows Firewall on a Windows Server 2003 SP2 that has Exchange 2007 SP1 CAS/HUB/MAILBOX roles configured and email stopped coming in. I was wondering what ports I need to open to allow internal users to connect using Outlook 2003 and 2007. I tried to open port 25 & 443 but it still didn't work.
0
Comment
Question by:katredrum
6 Comments
 
LVL 8

Expert Comment

by:DenverRick
ID: 22799344
It will depend on where the Domain info is coming from, is this box a DC?
0
 
LVL 1

Author Comment

by:katredrum
ID: 22799851
No, it is only a member server.
0
 
LVL 5

Accepted Solution

by:
Probity earned 500 total points
ID: 22801876
25 - smtp
110 - pop3
143 - imap4
80 - http
443 - https

Those are necessary... however, if you have local users connecting to the box, they will be using MAPI which uses many ports (random) to connect to the server -- unless you're having your users use RPC over HTTPS in-house or POP/IMAP - you will need to disable to firewall.
0
Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
LVL 1

Author Comment

by:katredrum
ID: 22815749
Probity, thank you for your response. I do have users connecting via Outlook from inside the network so I will need to disable the firewall. Is it common practice to disable Windows Firewall on servers in general?
I had all my servers configured this way (without firewall on) but with some users on the network being infected with spyware, adware, and virus' I wanted to try and prevent the server from being infected on ports that doesn't have to be open.
0
 
LVL 1

Author Closing Comment

by:katredrum
ID: 31511014
Did a little more researching and found that no one really put the Windows Firewall on Exchange Server if they have a corporate firewall. I think it is kind of stupid that Microsoft isn't able to program their software to be protected using their own firewall.
0
 
LVL 1

Expert Comment

by:Nelesh_N
ID: 24410612
Sorry just to pick up on this. I'm having issues with dsl users coming into the network. If the maibox resides on the one cluster it works fine, if connecting to the other cluster it drops on ports 2141 and 2112. Are these the dynamic ports that exchange use to connect to Outlook?
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article lists the top 5 free OST to PST Converter Tools. These tools save a lot of time for users when they want to convert OST to PST after their exchange server is no longer available or some other critical issue with exchange server or impor…
This article aims to explain the working of CircularLogArchiver. This tool was designed to solve the buildup of log file in cases where systems do not support circular logging or where circular logging is not enabled
In this video we show how to create a Resource Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: Navigate to the Recipients >> Resources tab.: "Recipients" is our default selection …
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question